Chainlink aggregator min/max bound misconfig
Veda (BoringVault)'s assessment for RD-F-060 — scored gray on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.
Evidence summary #
Chainlink feed minAnswer/maxAnswer bounds not retrieved per-feed. The Accountant reads IRateProvider.getRate() without explicit minAnswer/maxAnswer guard at the protocol layer. Per-feed bounds set by Chainlink, not Veda. RPC query per feed required.
Sources #
- GitHubAccountantWithRateProviders.sol sourceAccountantWithRateProviders.sol — reads IRateProvider.getRate() without explicit minAnswer/maxAnswer guardretrieved 2026-05-17
Methodology #
Determine whether the Chainlink aggregator's `minAnswer` and `maxAnswer` circuit-breaker bounds are misconfigured (too wide or too narrow) for the asset class.
See the full factor methodology and distribution across all protocols →
rubric_version v1.7.0 protocol veda factor RD-F-060 score gray collected_at 2026-05-17 12:41:22